procmail
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: procmail with smrsh

2000-10-18 17:43:53
from [John Summerfield] [Permanent Link] 

Is it possible to give POP users a restricted shell, allow them to do only
one thing (open a telnet url to allow them to change their own password)
AND have procmail filter their incoming mail for them?



How are you going to stop them from putting something in backticks in procmail:
dummy=`wreck the system`

where "wreck the system" is the exploit du jour?

It might be okay - procmail might use the user's shell.

I use the m4 macroes to generate my sendmail.cf. It generated thes procmail 
mailers (sendmail 8.10)

procmail,      P=/usr/bin/procmail, F=DFMSPhnu9, S=EnvFromSMTP/HdrFromSMTP, 
R=EnvToSMTP/HdrFromSMTP,
                T=DNS/RFC822/X-Unix,
                A=procmail -Y -m $h $f $u
 
 
##
Mlocal,         P=/usr/bin/procmail, F=lsDFMAw5:/|@qSPfhn9, 
S=EnvFromL/HdrFromL, R=EnvToL/HdrToL,
                T=DNS/RFC822/X-Unix,
                A=procmail -Y -a $h -d $u


Mprog,          P=/bin/sh, F=lsDFMoqeu9, S=EnvFromL/HdrFromL, R=EnvToL/HdrToL, 
D=$z:/,
                T=X-Unix/X-Unix/X-Unix,
                A=sh -c $u




_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: skipping brace, Philip Guenther
Next by Date:  Re: skipping brace, kuo
Previous by Thread:  procmail with smrsh, David Stern
Next by Thread:  formail problem, Kajetan Beler
Indexes:  [Date] [Thread] [Top] [All Lists]